Security Admin II
More than a mission, C2FO is a better financial system changing the way every business gains access to the working capital they need to thrive. At C2FO, everyone is an employee-owner which means we’re all invested in our work and team members. We’re a company of team players and self-starters finding new and innovative ways to get things done. If you’re excited to learn, grow and leave your mark on our fast-growing organization, C2FO may be the place for you.
About C2FO
Headquartered in Kansas City, USA, C2FO has more than 600 employees worldwide, with operations throughout North America, Europe, India, Asia Pacific, and Australia. C2FO is the world’s largest on-demand working capital platform. Our mission is to ensure every business has the capital needed to thrive and we have delivered more than $300 billion in funding to businesses since our founding. How do we do this? By providing fast, flexible and equitable access to low-cost capital through our easy-to-use platform.
We provide technology with a human touch, giving our customers the direct support they need and ensuring our team members have the tools, resources, and work environment they need to deliver on our promise to customers. With the C2FO platform, businesses worldwide have more working capital to fuel their growth, create jobs and develop new products.
Benefits
At C2FO, we take care of our customers and our people – the vital human capital that helps our customers thrive. That’s why we offer a comprehensive benefits package, flexible work options for work/life balance, volunteer time off, and more. Learn more about our benefits here. https://www.c2fo.com/amer/us/en-us/about-us/careers
About the Security Administrator II:
The Information Security Administrator II plays a critical role in fortifying the company's digital defenses. They oversee external penetration tests, configure advanced security software, lead security audits, and champion the dissemination of vital security processes throughout the company.
Essential Duties:

• Lead vulnerability assessments and penetration testing initiatives (with support).
• Integrate security tools with existing systems to create a holistic security posture.
• Conduct security research and stay up-to-date on emerging threats and vulnerabilities.
• Participate in security incident response, providing technical expertise and guidance.
• Mentor and guide junior Security Administrators, fostering their development.
• Maintain a strategic security program to protect the organization's information assets.
• Identify potential security risks and develop strategies to mitigate these risks.
• Liaise with relevant departments to ensure alignment between security and business strategies.
• Maintain compliance with developed security governance structure (policies, procedures).
• Monitor security alerts and investigate suspicious activity.
• Assist with access control and security policy implementation
• Contribute to security compliance efforts (SOC 2, ISO 27001).
• Experience drafting, implementing, and maintaining various security documents (policies, procedures, reports, training materials) and using technical writing skills for configuration documentation.

Knowledge, Skills, and Abilities:

• Vulnerability management and incident response methodologies.
• Knowledge of security best practices, frameworks, and methodologies (e.g., NIST CSF, MITRE ATT&CK).
• Experience with scripting (Unix shell or PowerShell).
• Experience configuring and managing security tools.
• Proficient knowledge of cybersecurity trends and threat landscapes.
• Strategic thinking with a proactive approach to risk management.
• Excellent problem-solving and analytical skills with a proactive approach to security.
• Strong communication and collaboration skills across technical and non-technical audiences.
• Ability to lead and mentor junior peers.
• Time management and organizational skills to handle multiple tasks effectively.
• Ability to learn new technologies quickly and adapt to changing security landscapes.
• Ability to work independently and take ownership of security projects.
• Ability to think critically and make sound security decisions under pressure.

Technologies

• Amazon Web Services (AWS), Google Cloud Platform (GCP), and Azure
• Security standards e.g., SOC2, ISO 27001, OWASP, NIST, GDPR, and CIS.
• Security Information and Event Management (SIEM) tools like Datadog.
• Cloud Security Posture Management (CSPM) tools like Prisma Cloud.
• Secrets and Encryption Management tools like Vault.

Basic Qualifications:

• 5 years of experience in a security role.
• Bachelor’s degree in information technology, computer Science, or a related field.
• Security certifications e.g., CISSP-ISSMP or CISM.
• Security tools e.g., Palo Alto Prisma or Datadog SIEM.
• Cloud platforms e.g., AWS, GCP, Azure.

Commitment to Diversity and Inclusion. As an Equal Opportunity Employer, we not only value diversity and equality, but we also empower our team members to bring their authentic selves to work every day. Our goal is to create a workplace that reflects the communities we serve and our global, multicultural clients. We recognize the power of inclusion, emphasizing that each team member was chosen for their unique ability to contribute to the overall success of our mission.
We do not discriminate based on race, religion, color, sex, gender identity, sexual orientation, age, non-disqualifying physical or mental disability, national origin, veteran status, or any other basis covered by appropriate law. All employment decisions are based on qualifications, merit, and business needs.
#LI-REMOTE
#LI-KC1